Design and Verification of Adaptive Cache Coherence Protocols ...

More documents

Recommendations

Info

Specification Implementation t 0 A B 2.5.1 Veri cation of Soundness t t 1 2 B A t 3 s0 A1 B1 s s 1 2 s3 A2 B1 B1 A1 B2 Figure 2.10: Forward Draining We use simulation to prove the soundness of an implementation. We rst build a mapping function that maps an implementation term to a speci cation term, and then show that the speci cation can simulate the implementation with respect to the mapping function. We de ne the mapping function based on the notion of drained terms or drained states. Intuitively, a drained implementation term contains no partially executed operation and therefore can be trivially mapped to a speci cation term via a projection function (or a combination of a projection function and a lift function). Based on the concept of drained terms, the implementation terms are classi ed into equivalent classes where each equivalent class contains exactly one drained term as the representative of the class. A term can be rewritten to a drained term via forward or backward draining. Forward draining means that the term can be rewritten to the corresponding drained term according to some implementation rules backward draining means that the drained term can be rewritten back to the term itself according to some implementation rules. Intuitively, forward draining completes partially executed operations, while backward draining cancels partially executed operations and recovers the system state. We can specify a set of draining rules so that for each implementation term, its normal form with respect to the draining rules represents a drained term. Figure 2.10 shows the use of forward draining. The speci cation allows t0 to be rewritten to t3 by applying rules A and B the order in which the rules are applied does not matter. The implementation takes two consecutive steps to achieve the semantic e ect of each speci cation rule: A1 and A2 for rule A, and B1 and B2 for rule B. The application of rules A1 and A2 can be interleaved with the application of rules B1 and B2. It is obvious that s0, s3, s5 and s8 are drained terms that correspond to t0, t1, t2 and t3, respectively. We can use forward draining to drain other implementation terms by completing partially executed operations this can be achieved by chosing A2 and B2 as the draining rules. Therefore, s1 is drained to s3, s2 is drained to s5, and s4, s6 and s7 are drained to s8. Figure 2.11 shows the use of backward draining in a non-con uent system. The speci cation allows t0 to be rewritten to t3 or t4, while applying rules A and B in di erent orders can lead 38 s 4 s5 A2 B2 A1 s s 6 7 B2 A2 s8
Specification Implementation t 1 B t 3 A A1 s t 0 B t 2 A t 4 s0 Figure 2.11: Backward Draining s 1 2 s3 A2 B1 to di erent results. Needless to say, s0, s3, s5, s8 and s9 are drained terms that correspond to t0, t1, t2, t3 and t4, respectively. Since forward draining would lead s4 non-deterministically to s8 or s9, we use backward draining to cancel partially executed operations. Therefore, s1, s2 and s4 are drained to s0, s6 is drained to s3, ands7 is drained to s5. We can use forward and backward draining simultaneously in order to complete some partially executed operations but cancel the others. For example, Figure 2.12 shows two di erent draining methods for the system given in Figure 2.10. The rst method uses forward draining for rule A and backward draining for rule B, and the second method uses backward draining for rule B and forward draining for rule A. Note that proper combination of forward and backward draining e ectively allows a term to be drained to any term, since it can always be rewritten to the initial term via backward draining and then to the desirable term via forward draining. Forward draining can be achieved by selecting certain implementation rules as the draining rules. In contrast, backward draining may require that proper new rules be devised so that partially executed operations can be rolled back. The complication of backward draining is that certain implementation rules need to be augmented with hidden states to record the lost information necessary for backward draining. This can happen, for example, when more than one term can be written to the same term, or when the left-hand-side of a rule contains some variables that are not present in the right-hand-side of the rule. Generally speaking, backward draining is used when forward draining would lead to non-con uent results. The formulation of mapping functions using drained terms is quite general. For example, we can compare a system with caches to a speci cation without caches by ushing all the cache cells. Similarly, we can compare a system with network queues to a speci cation without network queues by extracting all the messages from the queues. The idea of a rewriting sequence that can take a system into a drained term has an intuitive appeal for the system designer. Atypical soundness proof consists of the following steps: Specify a set of draining rules. Forward draining uses a subset of existing implementation rules, and backward draining may require new rules to be introduced. Forward and backward draining can be used together if necessary. 39 B1 B1 A1 B2 s 4 s5 A2 B2 A1 s s 6 7 B2 A2 s8 s9
Page 1: CSAIL Computer Science and Artifici
Page 5: Design and Veri cation of Adaptive
Page 8 and 9: I am truly grateful to my parents f
Page 10 and 11: 4 The Base Cache Coherence Protocol
Page 13 and 14: List of Figures 1.1 Impact of Archi
Page 15 and 16: Chapter 1 Introduction Shared memor
Page 17 and 18: transparent and exposed only for lo
Page 19 and 20: Example 1: Can both registers r1 an
Page 21 and 22: and release locks, which guard ever
Page 23 and 24: that are interconnected with an o -
Page 25 and 26: although various techniques have be
Page 27 and 28: y showing that each processor can a
Page 29 and 30: s1 if p (s1) ! s2 where s1 and s2 a
Page 31 and 32: Program counter (pc) +1 Instruction
Page 33 and 34: Branch target buffer (btb) Program
Page 35 and 36: instruction is waiting to be dispat
Page 37 and 38: Current State: Proc(ia, rf , rob, b
Page 39: Rule Name mem pmb mpb Next mem Next
Page 43 and 44: Intuitively, \2P " means that \P is
Page 45 and 46: (a) (b) PC 1005 PC 2000 Instruction
Page 47 and 48: ewritten to s2 according to rule R.
Page 49 and 50: It can be shown that the relaxed di
Page 51 and 52: Chapter 3 The Commit-Reconcile & Fe
Page 53 and 54: Producer Storel(a,v) Commit(a) Cons
Page 55 and 56: Commit/Reconcile Purge Loadl/Commit
Page 57 and 58: instructions, because of the lack o
Page 59 and 60: CRF-Relaxed-Commit Rule Site(sache,
Page 61 and 62: 3.4 Universality of the CRF Model M
Page 63 and 64: Translation from CRF to PSO: The Fe
Page 65 and 66: proc proc proc pmb mpb pmb mpb pmb
Page 67 and 68: Chapter 4 The Base Cache Coherence
Page 69 and 70: can be classi ed into two non-overl
Page 71 and 72: arbitrarily in an outgoing queue (t
Page 73 and 74: 4.3 The Imperative Rules of the Bas
Page 75 and 76: Imperative Processor Rules Instruct
Page 77 and 78: Figure 4.5 de nes the rules of the
Page 79 and 80: 4.5.2 Mapping from Base to CRF We d
Page 81 and 82: Base Imperative Rule CRF Rule IP1 (
Page 83 and 84: Base Rule Base Imperative Rule P1 I
Page 85 and 86: eceives a CacheReq message, it will
Page 87 and 88: e completed if it has an in nite nu
Page 89 and 90: SYS Sys(MSITE, SITEs) System MSITE
Page 91 and 92:
Commit/Reconcile C-Receive-WbAck Ru
Page 93 and 94:
message can be resumed eventually.
Page 95 and 96:
If the memory state shows that the
Page 97 and 98:
5.3.3 FIFO Message Passing The live
Page 99 and 100:
Figure 5.7 gives the M-engine rules
Page 101 and 102:
Backward-Message-Cache-to-Mem-for-W
Page 103 and 104:
5.4.3 Simulation of WP in CRF Theor
Page 105 and 106:
WP Imperative Rule CRF Rules IP1 (L
Page 107 and 108:
WP Rule WP Imperative & Directive R
Page 109 and 110:
(4) Msg(H,id ,Cache,a,-)" 2 Cin id(
Page 111 and 112:
This completes the proof according
Page 113 and 114:
emains as CachePending, there mustb
Page 115 and 116:
M-engine Rules Msg from id Mstate A
Page 117 and 118:
Chapter 6 The Migratory Cache Coher
Page 119 and 120:
Commit/Reconcile Send Purge Loadl/C
Page 121 and 122:
Mandatory Processor Rules Instructi
Page 123 and 124:
while the memory sends a FlushReq m
Page 125 and 126:
Lemma 38 D is strongly terminating
Page 127 and 128:
Migratory Imperative Rule CRF Rules
Page 129 and 130:
Cell(a,v,C[id ]) 2 Mem(s) _ Cell(a,
Page 131 and 132:
According to Theorem-C and Lemma 45
Page 133 and 134:
CacheReq message. In the latter cas
Page 135 and 136:
Chapter 7 Cachet: A Seamless Integr
Page 137 and 138:
7.1.1 Putting Things Together It is
Page 139 and 140:
Writeback Operations In Cachet, a w
Page 141 and 142:
Composite Message Equivalent Sequen
Page 143 and 144:
Imperative Processor Rules Instruct
Page 145 and 146:
Invalid Commit/Reconcile Receive Ca
Page 147 and 148:
Composite Imperative C-engine Rules
Page 149 and 150:
7.4 The Cachet Cache Coherence Prot
Page 151 and 152:
Voluntary C-engine Rules Cstate Act
Page 153 and 154:
The memory processes an incoming Ca
Page 155 and 156:
The inaccuracy of memory states can
Page 157 and 158:
C-engine Rule of Cachet Deriving Im
Page 159 and 160:
Composite Mandatory Processor Rules
Page 161 and 162:
memory regions simultaneously. In a
Page 163 and 164:
Chapter 8 Conclusions This thesis h
Page 165 and 166:
and heuristic policies. Mandatory r
Page 167 and 168:
technique can be used to allow a ca
Page 169 and 170:
Voluntary C-engine Rules Cstate Act
Page 171 and 172:
FIFO Message Passing msg1 msg2 msg2
Page 173 and 174:
[13] J. K. Archibald. The Cache Coh
Page 175 and 176:
[41] A. Erlichson, N. Nuckolls, G.
Page 177 and 178:
[71] J. Kuskin, D. Ofelt, M. Heinri
Page 179 and 180:
[101] F. Pong and M. Dubois. A New
show all

Design and Verification of Adaptive Cache Coherence Protocols ...

Create successful ePaper yourself

Delete template?

Save as template?